Randomized Hashing for Digital Signatures

Dang, Quynh

doi:https://doi.org/10.6028/NIST.SP.800-106

July 19, 2023: URLs for CSRC publication details pages have changed. Legacy URLs should automatically redirect to the new URLs. However, links to the actual publications have NOT changed (e.g., DOIs and PDFs on nvlpubs.nist.gov). Please send inquiries to csrc-inquiry@nist.gov.

NIST SP 800-106

Withdrawn on December 15, 2022.

Randomized Hashing for Digital Signatures

Documentation Topics

Date Published: February 2009

Planning Note (12/15/2022): After two public comment periods and an internal review by NIST's Crypto Publication Review Board, NIST SP 800-106 has been withdrawn.

Author(s)

Quynh Dang (NIST)

Abstract

NIST-approved digital signature algorithms require the use of an approved cryptographic hash function in the generation and verification of signatures. Approved cryptographic hash functions and digital signature algorithms can be found in FIPS 180-3, Secure Hash Standard (SHS), and FIPS 186-3, Digital Signature Standard (DSS), respectively. The security provided by the cryptographic hash function is vital to the security of a digital signature application. This Recommendation specifies a method to enhance the security of the cryptographic hash functions used in digital signature applications by randomizing the messages that are signed.

Keywords

cryptographic hash function; hash function; collision resistance; digital signature; randomized hashing

Control Families

Identification and Authentication; System and Communications Protection; System and Information Integrity

Documentation

Publication:
https://doi.org/10.6028/NIST.SP.800-106
Download URL

Supplemental Material:
None available

Document History:
02/25/09: SP 800-106 (Final)

Topics

Security and Privacy

digital signatures

Laws and Regulations

Federal Information Security Modernization Act, OMB Circular A-130